This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5a/161d71-fd23-4615-b81a-5b5efbeadfd4/1/TUmmTIqHgSSV6NTaxAWAoG0eFlg.mft File: TUmmTIqHgSSV6NTaxAWAoG0eFlg.mft (raw, json) Hash identifier: 9aBLdXFp5qYF+wfHUx8CSHSYl24wuhOmfXw/ZUCB+DI= Subject key identifier: 02:F2:71:19:A6:2C:A4:88:5B:04:78:9B:71:90:63:29:4F:DB:5C:09 Authority key identifier: 4D:49:A6:4C:8A:87:81:24:95:E8:D4:DA:C4:05:80:A0:6D:1E:16:58 Certificate issuer: /CN=4d49a64c8a87812495e8d4dac40580a06d1e1658 Certificate serial: 019C424668318A17D27BD433555747F8DC5C Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TUmmTIqHgSSV6NTaxAWAoG0eFlg.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/5a/161d71-fd23-4615-b81a-5b5efbeadfd4/1/TUmmTIqHgSSV6NTaxAWAoG0eFlg.mft Manifest number: 45 Signing time: Mon 09 Feb 2026 12:00:36 +0000 Manifest this update: Mon 09 Feb 2026 12:00:36 +0000 Manifest next update: Tue 10 Feb 2026 12:00:36 +0000 Files and hashes: 1: 1-hctJgY6gBl33VVyS8tXmbS7abc.roa (hash: 9yNVIpszOVVnnRDnySBI4EcYFXEUf6DlgTK4b8GXEqs=) 2: TUmmTIqHgSSV6NTaxAWAoG0eFlg.crl (hash: tMcQgOX2NRcou9Z0dqo8bcfZwmJ90X1w2Z9sKEKcXmA=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/5a/161d71-fd23-4615-b81a-5b5efbeadfd4/1/TUmmTIqHgSSV6NTaxAWAoG0eFlg.crl rsync://rpki.ripe.net/repository/DEFAULT/5a/161d71-fd23-4615-b81a-5b5efbeadfd4/1/TUmmTIqHgSSV6NTaxAWAoG0eFlg.mft rsync://rpki.ripe.net/repository/DEFAULT/TUmmTIqHgSSV6NTaxAWAoG0eFlg.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 12:00:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:42:46:68:31:8a:17:d2:7b:d4:33:55:57:47:f8:dc:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4d49a64c8a87812495e8d4dac40580a06d1e1658 Validity Not Before: Feb 9 12:00:36 2026 GMT Not After : Feb 10 12:00:36 2026 GMT Subject: CN=02f27119a62ca4885b04789b719063294fdb5c09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:40:15:94:93:a0:5f:cb:9e:98:c3:6a:06:b5: b3:78:af:8d:87:af:f8:57:9f:33:08:4f:1d:07:73: fb:59:13:99:ee:20:7b:c1:eb:68:e2:68:aa:d4:f4: 58:79:07:8c:df:5d:d3:65:d5:03:e4:f4:10:48:cc: 71:63:22:83:c9:e2:37:13:e5:19:20:ce:94:63:1a: cd:20:db:27:be:ad:f5:0a:6d:2f:48:ff:23:5d:3e: a6:dd:f2:a2:be:59:2b:28:17:4f:77:12:19:0c:07: 6d:f6:f1:00:f1:45:c5:5d:3d:6d:81:19:de:7d:bd: dc:ff:3f:58:6a:c1:66:10:3b:25:13:bb:26:02:f1: b7:dd:f2:c3:39:14:ef:f3:70:0d:0b:56:65:25:d2: 36:a7:6f:e4:9e:10:21:dc:4e:26:e9:58:31:54:3d: e3:e8:65:ed:56:9e:4d:8d:33:57:f4:6a:59:a7:af: d3:05:cc:66:4a:d5:8b:89:82:81:23:6a:48:fe:54: a4:79:44:20:e3:29:5d:63:4c:12:70:9e:50:a7:f2: 26:f4:69:b0:08:71:10:79:97:b5:b5:95:90:b4:64: 02:74:2b:cd:10:f1:03:dc:cf:d9:da:00:04:aa:b7: db:b1:53:ce:e8:85:59:86:67:84:aa:58:a3:ff:02: b4:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:F2:71:19:A6:2C:A4:88:5B:04:78:9B:71:90:63:29:4F:DB:5C:09 X509v3 Authority Key Identifier: keyid:4D:49:A6:4C:8A:87:81:24:95:E8:D4:DA:C4:05:80:A0:6D:1E:16:58 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TUmmTIqHgSSV6NTaxAWAoG0eFlg.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/161d71-fd23-4615-b81a-5b5efbeadfd4/1/TUmmTIqHgSSV6NTaxAWAoG0eFlg.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/161d71-fd23-4615-b81a-5b5efbeadfd4/1/TUmmTIqHgSSV6NTaxAWAoG0eFlg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:5b:40:3c:b3:7b:e8:f5:1b:5a:eb:d8:a8:a5:fd:a2:47:db: 4b:c4:fd:01:da:a3:ac:14:4a:34:f9:63:8c:f3:e5:1f:df:c3: d4:92:ec:b6:da:95:ee:95:20:07:a7:d6:6d:fa:f5:77:36:d9: 5a:1d:5e:74:0b:62:a4:17:b4:3a:f4:3a:16:06:d0:a3:4d:69: 6c:29:ca:bf:bb:70:0e:3c:61:49:11:dc:17:c2:ad:3a:e3:27: e8:cf:d2:4e:b9:98:32:4a:56:82:53:ef:8c:e0:65:11:bc:0e: f9:a4:fc:18:63:3b:9a:3e:4a:b9:97:6e:ac:89:f6:e6:00:0d: 86:b8:bc:3f:23:eb:88:19:06:61:74:a2:e2:52:fe:d8:bd:54: cf:9f:41:f9:6d:a0:d7:32:ab:29:40:bd:de:7e:8a:1a:ea:a4: be:c2:6c:9c:ec:b4:51:bb:a5:0c:33:23:cc:de:a1:2c:16:cf: 5e:85:76:f9:64:fb:15:a4:ad:87:0f:3a:8e:d1:4a:02:3a:ec: 76:20:56:47:cc:46:48:00:d7:68:16:ec:e3:31:bd:a8:ea:5a: a3:f2:a0:e2:c9:0d:b5:9e:96:a9:57:94:98:c9:19:89:0b:73: 30:9e:93:2c:aa:1c:6d:d6:3d:e1:3e:0a:be:12:56:1d:28:1f: 13:06:a2:f8 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxCRmgxihfSe9QzVVdH+NxcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDRkNDlhNjRjOGE4NzgxMjQ5NWU4ZDRkYWM0MDU4MGEwNmQx ZTE2NTgwHhcNMjYwMjA5MTIwMDM2WhcNMjYwMjEwMTIwMDM2WjAzMTEwLwYDVQQD EygwMmYyNzExOWE2MmNhNDg4NWIwNDc4OWI3MTkwNjMyOTRmZGI1YzA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUAVlJOgX8uemMNqBrWzeK+Nh6/4 V58zCE8dB3P7WROZ7iB7weto4miq1PRYeQeM313TZdUD5PQQSMxxYyKDyeI3E+UZ IM6UYxrNINsnvq31Cm0vSP8jXT6m3fKivlkrKBdPdxIZDAdt9vEA8UXFXT1tgRne fb3c/z9YasFmEDslE7smAvG33fLDORTv83ANC1ZlJdI2p2/knhAh3E4m6VgxVD3j 6GXtVp5NjTNX9GpZp6/TBcxmStWLiYKBI2pI/lSkeUQg4yldY0wScJ5Qp/Im9Gmw CHEQeZe1tZWQtGQCdCvNEPED3M/Z2gAEqrfbsVPO6IVZhmeEqlij/wK0EQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFALycRmmLKSIWwR4m3GQYylP21wJMB8GA1UdIwQY MBaAFE1JpkyKh4EklejU2sQFgKBtHhZYMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvVFVtbVRJcUhnU1NWNk5UYXhBV0FvRzBlRmxnLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC81YS8xNjFkNzEtZmQyMy00NjE1LWI4MWEt NWI1ZWZiZWFkZmQ0LzEvVFVtbVRJcUhnU1NWNk5UYXhBV0FvRzBlRmxnLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC81YS8xNjFkNzEtZmQyMy00NjE1LWI4MWEtNWI1ZWZiZWFkZmQ0 LzEvVFVtbVRJcUhnU1NWNk5UYXhBV0FvRzBlRmxnLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAJVtAPLN7 6PUbWuvYqKX9okfbS8T9AdqjrBRKNPljjPPlH9/D1JLsttqV7pUgB6fWbfr1dzbZ Wh1edAtipBe0OvQ6FgbQo01pbCnKv7twDjxhSRHcF8KtOuMn6M/STrmYMkpWglPv jOBlEbwO+aT8GGM7mj5KuZdurIn25gANhri8PyPriBkGYXSi4lL+2L1Uz59B+W2g 1zKrKUC93n6KGuqkvsJsnOy0UbulDDMjzN6hLBbPXoV2+WT7FaSthw86jtFKAjrs diBWR8xGSADXaBbs4zG9qOpao/Kg4skNtZ6WqVeUmMkZiQtzMJ6TLKocbdY94T4K vhJWHSgfEwai+A== -----END CERTIFICATE-----Generated at Mon Feb 9 19:40:17 2026 by rpki-client